Effective date: [24-08-2025]
Who We Are
This Privacy Policy explains how Elvek Technologies (trading as Sahir Web Solutions / “SWS”), SCO 123-124, 2nd Floor, Sector 17-C, Chandigarh 160017, India (“SWS”, “we”, “us”) collects, uses, stores and shares personal data while providing our AI agents, workflows, portal/CRM, websites and related services (“Services”).
We primarily comply with the Digital Personal Data Protection Act, 2023 (DPDP Act) and applicable Indian laws (including the IT Act, 2000 and SPDI Rules, to the extent still in force).
Scope
This Policy applies to:
- Our paying clients and their authorised users;
- End-users/lead data processed through our clients’ use of the Services;
- Visitors to our marketing sites and landing pages.
If you submit someone else’s information to us, you confirm you have lawful authority/consent to do so.
What We Collect
A.Account & Billing Data – Name, company, email, phone, address, GST/VAT details, login credentials or SSO IDs.
B. Operational & Interaction Data – Lead/contact info, chats/call transcripts, uploaded FAQs, scripts, rubrics, media.
C. Technical Data – IP, device/browser type, usage logs, cookies.
D. Support & Feedback Data – Tickets, support chats/calls, surveys.
We do not seek sensitive personal data unless you voluntarily provide it. Avoid sending special categories unless necessary and lawful.
How We Collect
- Directly from you (sign-ups, demos, support, file uploads).
- Via API/integration with your CRM, WhatsApp Business API, SIP trunk, payment gateways, etc.
- Automatically through cookies, beacons and server logs.
- Publicly available sources (for validation).
Purposes & Legal Basis (DPDP Act)
|
Purpose |
Examples |
Legal Basis |
|
Deliver & operate Services |
Run AI agents, process leads, store transcripts |
Consent / Contractual necessity |
|
Configure & customise |
Build prompts, scoring rules, dashboards |
Consent / Legitimate use |
|
Billing & compliance |
Invoicing, tax, fraud checks |
Legal obligation / Contract |
|
Support & improvement |
Debug, anonymised analytics, model tuning |
Legitimate use (with safeguards) |
|
Marketing (B2B) |
Updates, newsletters (opt-out anytime) |
Consent / Legitimate use |
|
Security & legal |
Logs, incident response, law requests |
Legal obligation / Legitimate use |
We rely on “legitimate use” grounds permitted under DPDP for certain processing essential to deliver the service, subject to safeguards and your rights.
Consent Management
Where required, we obtain consent in an itemised, specific and informed manner. You may withdraw consent at any time via in-app tools or by emailing info@elvekgroup.com. Withdrawal will not affect past lawful processing but may limit service delivery.
Children’s Data
Our Services target businesses. We do not knowingly process data of individuals under 18 without verifiable parental consent, as required by the DPDP Act. Contact us if you believe a minor’s data was shared inadvertently.
Sharing & Third Parties
We may share data with:
- Processors/Vendors (cloud hosting, LLM providers like OpenAI, Retell.ai, WhatsApp/Twilio, email/SMS gateways) under binding contracts;
- Payment processors (Stripe/Razorpay);
- Advisors/Authorities when legally required.
We ensure confidentiality and data protection obligations with all processors. We do not sell personal data.
Cross-Border Transfers
While primary storage may be in India, some processing (e.g., LLM inference) can occur outside India. We use encryption and contractual safeguards to protect data during such transfers, to the extent required under Indian law.
Security
We maintain administrative, technical and physical measures (ISO 27001:2018 controls, encryption in transit/at rest, RBAC, monitoring). No system is perfect; please notify us promptly of any suspected breach.
Retention & Deletion
We retain personal data only as long as needed for stated purposes or legal requirements. Default ops logs: 12–24 months; CRM/transcripts follow your account lifecycle. On termination or request, we will delete or anonymise data unless retention is legally mandated.
Your Rights (DPDP Act)
You (or your authorised representative) can:
- Access the personal data we hold;
- Correct/Update inaccurate or incomplete data;
- Delete/Request Erasure subject to legal retention;
- Withdraw Consent for specific processing;
- Nominate another individual to exercise rights in case of death or incapacity.
Write to info@elvekgroup.com to exercise these rights. We may verify identity before acting.
Automated Decision-Making
Our AI agents may score leads or generate recommendations automatically. Human review/override options exist (via approval queues). Contact us if you need an explanation of a specific automated outcome.
Cookies & Similar Tech
We use essential cookies for login/security and optional analytics cookies for site improvement. Manage cookies through your browser or our consent banner (if shown).
Grievance Redressal
Grievance Officer: Vikram Kaushal, VP AI Division, SWS.
Email: vikram@elvekgroup.com
Address: SCO 123-124, 2nd Floor, Sector 17-C, Chandigarh 160017, India.
We aim to acknowledge complaints within 7 working days and resolve them within 30 working days, as per the DPDP Act.
Changes to this Policy
We may update this Policy periodically. Material changes will be notified by email or in-app. Continued use after the effective date indicates acceptance.
Contact
For privacy questions, requests, or complaints:
info@elvekgroup.com | +91-[9888864010]
If unresolved, you may approach the Data Protection Board of India or other competent authority as applicable.
